mirror_php/moodle
1
0
Fork 0
mirror of https://github.com/moodle/moodle.git synced 2025-07-10 08:56:39 +02:00
Code Issues Projects Releases Wiki Activity

MDL-58220 oauth2: Sanity check user pictures

Browse Source
This commit is contained in:
Damyon Wiese
2017-03-31 10:48:15 +08:00
parent 7b9f5b9986
commit 14cfd280d3
1 changed files with 12 additions and 0 deletions
Download Patch File Download Diff File Expand all files Collapse all files

12
lib/classes/oauth2/client.php
View File

@ -282,6 +282,18 @@ class client extends \oauth2_client {
} }
} }
if (!empty($user->picture)) {
// If it doesn't look like a picture lets unset it.
if (function_exists('imagecreatefromstring')) {
$img = @imagecreatefromstring($user->picture);
if (empty($img)) {
unset($user->picture);
} else {
imagedestroy($img);
}
}
}
return (array)$user; return (array)$user;
} }
} }